Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
If you are still wanting to receive incoming mail, you can't stop someone from telneting to the SMTP port. As long as the proper SMTP commands are sent, here is no way for the mail daemon to differentiate between a remote mail client or telnet.
If you want to block incoming mail or at least limit the IP addresses that can send you mail, then that is a different situation.
when you use telnet on a port such as 25 it is not a REAL telnet connection. You are connected to the SMTP server and using the telnet client you can issue commands directly to your server.
If you stopped the SMTP server you wont be able to telnet to it anymore.
p.s. you can do this to many services such as HTTP also and can be used to check connections and service availability
Originally posted by yenonn what if someone telnet port 25 and make a virus attachment through the mail? could it be possible make an attachment through telnetting?
Yes. As already stated, when you "telnet" to port 25, you are acting as another SMTP server attempting to deliver mail to your server.
Quote:
Originally posted by yenonn then, i can simply impersonate a particular to sending email on behalf of him???? is that true?
Yes. Have you never recieved spam before?
Quote:
Originally posted by yenonn then, what is the protection ?
Protection against what? Imperonating someone else's email? There are no good solutions really. Some people will say that SPF provides good protection, but it doesn't. Most SMTP servers these days provide you with methods to reject mail to unknown users. But spam is simply a fact of life if you are going to run an SMTP server on today's internet.
it will limit the risk to a degree because people wont be able to send anything using your SMTP server without the auth user/pass but people will still be able to telnet in and attempt, no way of stopping that. Do you recieve emails on this box? or just sending? If you are just sending you may be able to restrict the access to the SMTP server to IP's you know.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.